Secure Configuration Guides 3.1 Flashcards

1
Q

Default Configs

A

No system is safe with the default configs. You need some guidelines to keep things safe. There are hardening guides specific to software or platforms. Get feedback from the manufacturer or internet interest group. Occasionally there are some general-purpose guides online.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Web Server Hardening

A

One of the most popular services on the net. Microsoft’s Internet Information Server, Apache HTTP Server, and others. These are high risk area for security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Web Server Hardening Continued

A

Information Leakage: Banner information, directory browsing

Permissions: Make sure all permissions are working properly.

Configure SSL: Make sure certificates are installed and current, and you have all the ones you need.

Log Files: Make sure logs are enabled and you have access to them as necessary.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Operating System Hardening

A

Any operating system we install needs to be updated with all necessary system updates, service packs, security patches. User accounts permissions, passwords need to be set up as necessary. Network access permissions as necessary, and anti-virus/malware needs to be in place.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Application Server

A

Usually between the web server and the back end database. Commonly known as “middleware”. This usually provides runtime libraries and programming languages. Usually have a very specific function and all unnecessary services can/should be disabled. It needs to be updated/patched just like everything else.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Network Infrastructure Devices

A

Switches, routers, firewalls, IPS. They generally have purpose built operating systems to handle their specific tasks. These have to be integrated with a backend authentication process. These devices don’t get as many updates as our phones for example. You need to stay aware and up to date with these devices.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly